Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    00d119fc464e81f503dfe92e407e8297

  • Size

    2.3MB

  • Sample

    231225-c9ncaschhn

  • MD5

    00d119fc464e81f503dfe92e407e8297

  • SHA1

    f57eb560df81f870b6fb865337c273486dfdc721

  • SHA256

    8da107ea5a07ea1a4ab6c033782d8c0df570f788559d3c6c3b72d452b347e583

  • SHA512

    0834f67cf3e77435279392064ae0d27c70ba01f6113cf65359e5b6887dfaa0c585485f19eb5a7e43c0acd52cdf32c76a2b945c688ccde293f78c17c342373131

  • SSDEEP

    49152:IXWpU1Dost4jUlU/fzcINWRVE67RsNKWFT+yAirGCz:IXWps4jCV90TFTFz6+

Score
10/10

Malware Config

Targets

    • Target

      00d119fc464e81f503dfe92e407e8297

    • Size

      2.3MB

    • MD5

      00d119fc464e81f503dfe92e407e8297

    • SHA1

      f57eb560df81f870b6fb865337c273486dfdc721

    • SHA256

      8da107ea5a07ea1a4ab6c033782d8c0df570f788559d3c6c3b72d452b347e583

    • SHA512

      0834f67cf3e77435279392064ae0d27c70ba01f6113cf65359e5b6887dfaa0c585485f19eb5a7e43c0acd52cdf32c76a2b945c688ccde293f78c17c342373131

    • SSDEEP

      49152:IXWpU1Dost4jUlU/fzcINWRVE67RsNKWFT+yAirGCz:IXWps4jCV90TFTFz6+

    Score
    10/10
    • Darkcomet

      DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks